CFNetwork in Apple Mac OS X 10.5 prior to 10.5.8 places an incorrect URL in a certificate warning in certain 302 redirection scenarios, which makes it easier for remote malicious users to trick a user into visiting an arbitrary https web site by leveraging an open redirect vulnerability, a different issue than CVE-2009-2062.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x 10.5.0 |
||
apple mac os x 10.5.1 |
||
apple mac os x server 10.5 |
||
apple mac os x server 10.5.0 |
||
apple mac os x server 10.5.7 |
||
apple mac os x 10.5.3 |
||
apple mac os x 10.5.4 |
||
apple mac os x server 10.5.4 |
||
apple mac os x server 10.5.5 |
||
apple mac os x 10.5.6 |
||
apple mac os x 10.5 |
||
apple mac os x 10.5.5 |
||
apple mac os x server 10.5.6 |
||
apple mac os x 10.5.7 |
||
apple mac os x 10.5.2 |
||
apple mac os x server 10.5.1 |
||
apple mac os x server 10.5.2 |
||
apple mac os x server 10.5.3 |